Official Jewel Discussion

Some hint would be appreciated, I am on same as others.
Is HTB filtering fun from their platform?
I know it is not goal that all users pwn all boxes, but we are here to have fun and learn not to compete :).

Rooted. Good box, root part may be confuse us :smiley:

Type your comment> @jkana101 said:

Rooted. Good box, root part may be confuse us :smiley:

Im stuck at the beginning. Where do I go to get login. I just need a simple hint. my pms are open to everyone.

Type your comment> @DancinHype said:

Type your comment> @jkana101 said:

Rooted. Good box, root part may be confuse us :smiley:

Im stuck at the beginning. Where do I go to get login. I just need a simple hint. my pms are open to everyone.

DM me

Could I get a nudge? I’ve found the bcrypt hashes but pretty sure its a rabbithole as I was unable to rock it. Is there something else in the repo/dir I should be looking for? I checked versions of the webtool and everything but seem to be stuck. Checked both ports and don’t really know which one to go after now. :confused:

@zweeden Stuck on same boat man

Got user. Hint: when developing and deploying a software, how would you quickly make sure it’s more-or-less secure? Sorry but I can’t make more explicit hints I guess :slight_smile:

Now struggling with root…

Type your comment> @adamczi said:

Got user. Hint: when developing and deploying a software, how would you quickly make sure it’s more-or-less secure? Sorry but I can’t make more explicit hints I guess :slight_smile:

Now struggling with root…

Sent you a PM.

Does anyone know how to use the R*** for ****** I dont understand how to use it to get the foothold. If anyone can help please PM me.

So I’m about 91.6% sure about the path to a foothold, I just am having a hard time installing tooling. For those struggling, think of the name of the box and what app is running something like the name, and what we commonly look for to exploit apps.

Edit: hmm, maybe I don’t need to install anything

Type your comment> @pizzapower said:

So I’m about 91.6% sure about the path to a foothold, I just am having a hard time installing tooling. For those struggling, think of the name of the box and what app is running something like the name, and what we commonly look for to exploit apps.

I figured that part out but I am having trouble putting it against the machine ip

Type your comment> @DancinHype said:

Type your comment> @pizzapower said:

So I’m about 91.6% sure about the path to a foothold, I just am having a hard time installing tooling. For those struggling, think of the name of the box and what app is running something like the name, and what we commonly look for to exploit apps.

I figured that part out but I am having trouble putting it against the machine ip

If we’re talking about the same thing, I think we have to modify the payload and the encoding seems finicky to me, but I generally don’t know what I’m going. lol

‘Error “Operation not permitted” while writing config’ What does it mean? I’m on the way to root and it keeps gives me this error when trying to log with t**p. Someone could help me?

Type your comment> @totem4 said:

‘Error “Operation not permitted” while writing config’ What does it mean? I’m on the way to root and it keeps gives me this error when trying to log with t**p. Someone could help me?

PM me what youre trying to do

Can someone PM me a hint on what code im suppose to change for the ***** to execute R*** ** *****

Rooted.
Thanks to “polarbearer” for this very nice box.
PM for nudges

Type your comment> @totem4 said:

‘Error “Operation not permitted” while writing config’ What does it mean? I’m on the way to root and it keeps gives me this error when trying to log with t**p. Someone could help me?

I’m currently stuck here as well :confused:

I need help. I got my U****** to change to the b*** but what do I do with it>?

For those stuck at the priv esc with the error, think about what you’re using. Its hard to communicate when you’re out of sync with each other.

Type your comment> @gointhrushell said:

For those stuck at the priv esc with the error, think about what type of authentication you’re using. Its hard to communicate when you’re out of sync with each other.

check your PM